VYPR

VMware Fusion

by Broadcom Corporation

CVEs (2)

  • CVE-2025-41239HigJul 15, 2025
    risk 0.46cvss 7.1epss 0.02

    VMware ESXi, Workstation, Fusion, and VMware Tools contains an information disclosure vulnerability due to the usage of an uninitialised memory in vSockets. A malicious actor with local administrative privileges on a virtual machine may be able to exploit this issue to leak…

  • CVE-2019-5514Apr 1, 2019
    risk 0.00cvss epss 0.03

    VMware VMware Fusion (11.x before 11.0.3) contains a security vulnerability due to certain unauthenticated APIs accessible through a web socket. An attacker may exploit this issue by tricking the host user to execute a JavaScript to perform unauthorized functions on the guest…